2013/10/3 Axel Grosse <agrosse@axway.com>

Hi Ben, Dieter
can we focus on LDAPS because TLS1 is not an option and even if LDAPS is deprecated I should be able to configure it ..

TLSCACertificateFile /etc/openldap/ssl/VordelCA.crt
TLSCertificateFile /etc/openldap/ssl/VordelDev.crt
TLSCertificateKeyFile /etc/openldap/ssl/VordelDev.key
TLSVerifyClient never

are this entries in the slapd.conf sutable for LDAPS ?
if not whats missing ?

start the server with
/usr/sbin/slapd -h ldap://192.168.30.169:636 -u ldap

Use "-h ldaps://192.168.30.169 " in slapd start command.

Clément.